$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f33322d3332203d3e20313430343133.roa File: 323430363a313363303a3a2f33322d3332203d3e20313430343133.roa (raw, json) Hash identifier: htuRYgwO+/oesGX5fEx8u0E0zBo0A2TVpj6idfUe6I4= Subject key identifier: 5D:DA:25:3D:E0:47:D1:A0:D3:20:FC:7C:8D:FA:20:9E:66:9F:72:94 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 576CB0B4FD3F74A065B564E180B5521238956FFB Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f33322d3332203d3e20313430343133.roa Signing time: Mon 08 Sep 2025 07:03:22 +0000 ROA not before: Mon 08 Sep 2025 06:58:22 +0000 ROA not after: Mon 07 Sep 2026 07:03:22 +0000 asID: 140413 IP address blocks: 2406:13c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 12:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6c:b0:b4:fd:3f:74:a0:65:b5:64:e1:80:b5:52:12:38:95:6f:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Sep 8 06:58:22 2025 GMT Not After : Sep 7 07:03:22 2026 GMT Subject: CN=5DDA253DE047D1A0D320FC7C8DFA209E669F7294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d7:57:72:ed:98:33:cc:19:95:c6:8a:d5:4a: 4e:50:5b:27:97:9b:94:e1:b1:14:e9:72:70:26:da: 53:4d:8a:ab:b1:94:33:b1:ef:04:11:ca:83:3b:63: e3:12:f3:69:b2:3c:9a:98:4f:9c:89:f6:71:3a:39: 0f:6c:8c:b7:e3:b9:7e:9a:0b:75:36:3e:5e:2a:92: 98:d7:4a:4b:81:2f:35:56:58:a7:de:58:40:e3:9c: a4:48:7e:70:32:e5:67:dd:56:8b:21:a6:63:b4:9c: ee:51:77:d7:63:e8:a8:f3:c9:d7:ee:7d:84:4c:f5: 98:1d:b0:12:eb:41:47:8c:2a:68:bd:a8:89:91:19: df:98:80:57:95:42:68:85:c7:79:14:79:d0:f5:2c: 5e:52:f2:a9:d7:d8:8a:86:90:97:72:33:0e:19:9f: b1:35:cf:23:27:ef:9c:23:82:40:3a:60:7d:61:53: f9:42:8b:a5:7a:b7:b9:46:49:ba:56:2b:82:25:e9: dc:42:15:93:7f:8f:df:99:ec:2d:3e:af:f2:4d:75: 1c:e6:3a:65:48:a8:08:26:e1:da:da:6e:70:99:e2: 2c:41:5b:fb:f5:8d:99:d4:01:12:73:c4:5e:09:ed: b3:4b:f6:93:a9:f3:bb:21:78:89:f6:4b:4e:09:e9: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DA:25:3D:E0:47:D1:A0:D3:20:FC:7C:8D:FA:20:9E:66:9F:72:94 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f33322d3332203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0::/32 Signature Algorithm: sha256WithRSAEncryption 42:f9:73:6d:47:82:dc:bf:7a:72:e3:d1:86:d8:08:6c:34:36: 7e:df:2b:aa:06:90:16:d4:df:2a:7e:f8:29:41:8c:49:e2:b4: 1c:15:6d:07:d2:1b:cd:57:2d:75:0c:57:5b:b4:20:25:1f:b9: ed:04:60:fb:1f:7a:fa:06:48:42:cf:1c:68:a7:e6:72:9e:0c: c9:b7:d0:de:0e:1b:34:dc:4e:13:7a:77:8c:5a:92:32:63:24: a8:7b:00:4f:cf:4d:ab:5b:e5:bc:a3:80:db:10:4c:7e:e6:3f: 48:2f:ee:4b:95:0b:f3:37:08:3c:71:12:bf:65:81:91:a1:21: e0:1e:4d:b9:a4:04:ed:59:92:ab:66:a3:08:0f:aa:8c:f2:b8: 97:f6:b5:44:0b:b1:3e:e4:5b:13:14:47:e7:ac:c5:60:65:ec: 26:4a:1d:ad:04:60:45:83:8a:6b:0c:c0:cd:4b:bc:c9:80:a3: 84:66:70:5f:a7:61:5e:1c:a7:c6:71:9e:7f:c7:2b:ec:65:3f: 31:de:d6:95:34:f7:3f:a3:49:c9:59:11:c5:02:4d:cd:4a:61: 74:56:b4:ee:8a:f7:80:6c:bc:bc:91:f4:f1:31:8b:8b:9e:9b: c7:f1:f7:7a:a0:70:00:45:7e:9f:b8:ba:af:2f:27:f0:22:57: bf:80:53:07 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUV2ywtP0/dKBltWThgLVSEjiVb/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA5MDgwNjU4MjJaFw0yNjA5MDcwNzAzMjJaMDMxMTAvBgNV BAMTKDVEREEyNTNERTA0N0QxQTBEMzIwRkM3QzhERkEyMDlFNjY5RjcyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa11dy7ZgzzBmVxorVSk5QWyeX m5ThsRTpcnAm2lNNiquxlDOx7wQRyoM7Y+MS82myPJqYT5yJ9nE6OQ9sjLfjuX6a C3U2Pl4qkpjXSkuBLzVWWKfeWEDjnKRIfnAy5WfdVoshpmO0nO5Rd9dj6Kjzydfu fYRM9ZgdsBLrQUeMKmi9qImRGd+YgFeVQmiFx3kUedD1LF5S8qnX2IqGkJdyMw4Z n7E1zyMn75wjgkA6YH1hU/lCi6V6t7lGSbpWK4Il6dxCFZN/j9+Z7C0+r/JNdRzm OmVIqAgm4drabnCZ4ixBW/v1jZnUARJzxF4J7bNL9pOp87sheIn2S04J6agRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUXdolPeBH0aDTIPx8jfognmafcpQwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE8AwDQYJKoZI hvcNAQELBQADggEBAEL5c21Hgty/enLj0YbYCGw0Nn7fK6oGkBbU3yp++ClBjEni tBwVbQfSG81XLXUMV1u0ICUfue0EYPsfevoGSELPHGin5nKeDMm30N4OGzTcThN6 d4xakjJjJKh7AE/PTatb5byjgNsQTH7mP0gv7kuVC/M3CDxxEr9lgZGhIeAeTbmk BO1ZkqtmowgPqozyuJf2tUQLsT7kWxMUR+esxWBl7CZKHa0EYEWDimsMwM1LvMmA o4RmcF+nYV4cp8Zxnn/HK+xlPzHe1pU09z+jSclZEcUCTc1KYXRWtO6K94BsvLyR 9PExi4uem8fx93qgcABFfp+4uq8vJ/AiV7+AUwc= -----END CERTIFICATE-----Generated at Mon Sep 8 09:33:42 2025 by rpki-client